package jdbc;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.Collection;
import java.util.Scanner;

public class JDBCDemo8 {
    public static void main(String[] args) {
        Scanner sc=new Scanner(System.in);
        System.out.println("请输入用户名");
        String username=sc.nextLine();
        System.out.println("请输入密码");
        String password=sc.nextLine();

        try (Connection connection=DBUtil.getConnection()){
            //预编译语句中?仅能代表值，其余部分不能使用
            String sql="SELECT id,username,nickname,age "+
                    "FROM userinfo "+
                    "WHERE username=? AND password=? ";
            PreparedStatement ps=connection.prepareStatement(sql);//先把sql语句发送给数据库
            //只需要单独指明?对应的值
            ps.setString(1,username);
            ps.setString(2,password);

            ResultSet rs=ps.executeQuery();//不需要在穿入sql
            if (rs.next()){
                System.out.println("登录成功");
            }else {
                System.out.println("登录失败");
            }




        } catch (SQLException e) {
            e.printStackTrace();
        }
    }
}
